Cyrus-SASL contains an unspecified vulnerability in the DIGEST-MD5process that could lead to a Denial of Service.

Impact======

An attacker could possibly exploit this vulnerability by sendingspecially crafted data stream to the Cyrus-SASL server, resulting in aDenial of Service even if the attacker is not able to authenticate.

This GLSA and any updates to it are available for viewing atthe Gentoo Security Website:

http://security.gentoo.org/glsa/glsa-200604-09.xml

Concerns?=========

Security is a primary focus of Gentoo Linux and ensuring theconfidentiality and security of our users machines is of utmostimportance to us. Any security concerns should be addressed tosecurity@gentoo.org or alternatively, you may file a bug athttp://bugs.gentoo.org.